Filtered by vendor Ufo2000
Subscribe
Total
5 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2006-3791 | 1 Ufo2000 | 1 Ufo2000 | 2024-02-04 | 5.0 MEDIUM | N/A |
| The decode_stringmap function in server_transport.cpp for UFO2000 svn 1057 allows remote attackers to cause a denial of service (daemon termination) via a large keysize or valsize, which causes a crash when the resize function cannot allocate sufficient memory. | |||||
| CVE-2006-3792 | 1 Ufo2000 | 1 Ufo2000 | 2024-02-04 | 7.5 HIGH | N/A |
| SQL injection vulnerability in ServerClientUfo::recv_packet in server_protocol.cpp in UFO2000 svn 1057 allows remote attackers to execute arbitrary SQL commands via unspecified vectors involving the packet.c_str function. | |||||
| CVE-2006-3790 | 1 Ufo2000 | 1 Ufo2000 | 2024-02-04 | 5.0 MEDIUM | N/A |
| The decode_stringmap function in server_transport.cpp for UFO2000 svn 1057 allows remote attackers to cause a denial of service (daemon termination) via a keysize or valsize that is inconsistent with the packet size, which leads to a buffer over-read. | |||||
| CVE-2006-3789 | 1 Ufo2000 | 1 Ufo2000 | 2024-02-04 | 7.5 HIGH | N/A |
| Multiple array index errors in the (1) recv_rules, (2) recv_select_unit, (3) recv_options, and (4) recv_unit_data functions in multiplay.cpp in UFO2000 svn 1057 allow remote attackers to execute arbitrary code and cause a denial of service (opponent crash) via certain packet data that specifies an out-of-bounds index. | |||||
| CVE-2006-3788 | 1 Ufo2000 | 1 Ufo2000 | 2024-02-04 | 7.5 HIGH | N/A |
| Multiple buffer overflows in multiplay.cpp in UFO2000 svn 1057 allow remote attackers to execute arbitrary code via (1) a long unit name in Net::recv_add_unit,; (2) large values to Net::recv_rules, Net::recv_select_unit, Net::recv_options, and Net::recv_unit_data; and (3) a large mapdata GEODATA structure in Net::recv_map_data. | |||||